I am a bit concerned about the outdated Roundcube package in Ubuntu Server. In lights of the zero day published today I checked on the versions we receive from the ubuntu repositories and that made me quite nervous.
I know that this is probably better addressed to the ubuntu folks but I wonder what people here are actually doing about this. If Ubuntu is not providing new packages soon do you update roundcube by hand on your boxes? Do you disable Roundcube for good?